Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/04/687cd5-6345-4f64-be46-ede70c8ed513/1/LKyEzuxXs1-jlTSuIwCa6oICOao.mft
File: LKyEzuxXs1-jlTSuIwCa6oICOao.mft (raw, json)
Hash identifier: 77yQrySGLgnGeVZ6UD8CuPc2bgbcLFpTGPrdcAYBcyo=
Subject key identifier: DC:A5:62:29:14:C1:69:B1:73:4D:7B:AC:42:B6:0D:DF:3F:F6:B0:EC
Authority key identifier: 2C:AC:84:CE:EC:57:B3:5F:A3:95:34:AE:23:00:9A:EA:82:02:39:AA
Certificate issuer: /CN=2cac84ceec57b35fa39534ae23009aea820239aa
Certificate serial: 019D9818F16C34FBAD0DB55EBFF1AB1E3547
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/LKyEzuxXs1-jlTSuIwCa6oICOao.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/04/687cd5-6345-4f64-be46-ede70c8ed513/1/LKyEzuxXs1-jlTSuIwCa6oICOao.mft
Manifest number: 0AE7
Signing time: Thu 16 Apr 2026 21:01:04 +0000
Manifest this update: Thu 16 Apr 2026 21:01:04 +0000
Manifest next update: Fri 17 Apr 2026 21:01:04 +0000
Files and hashes: 1: Aqd9W6cfpHLafzRO-ayl_GNgqe0.roa (hash: F2Adog2BirH6Gouzr8SZxmAWeuEuTARSmlF0Zm/Q4fY=)
2: LKyEzuxXs1-jlTSuIwCa6oICOao.crl (hash: M4+s4WAtMdK05U04XuoxY5B8nUP1YDWng0/WYPksN5k=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/04/687cd5-6345-4f64-be46-ede70c8ed513/1/LKyEzuxXs1-jlTSuIwCa6oICOao.crl
rsync://rpki.ripe.net/repository/DEFAULT/04/687cd5-6345-4f64-be46-ede70c8ed513/1/LKyEzuxXs1-jlTSuIwCa6oICOao.mft
rsync://rpki.ripe.net/repository/DEFAULT/LKyEzuxXs1-jlTSuIwCa6oICOao.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 17 Apr 2026 21:01:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:98:18:f1:6c:34:fb:ad:0d:b5:5e:bf:f1:ab:1e:35:47
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2cac84ceec57b35fa39534ae23009aea820239aa
Validity
Not Before: Apr 16 21:01:04 2026 GMT
Not After : Apr 17 21:01:04 2026 GMT
Subject: CN=dca5622914c169b1734d7bac42b60ddf3ff6b0ec
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e0:86:94:ae:4a:33:c4:1b:d6:93:ea:48:77:f4:
16:32:11:86:ff:58:09:ec:56:ca:54:ab:b6:56:e8:
d1:b5:89:be:44:eb:e9:3f:cd:ee:e1:d7:3e:45:fd:
5a:e4:19:48:96:cf:cf:fa:e3:c5:92:89:9c:57:48:
a2:01:0d:c7:36:ae:fc:70:fa:98:63:47:55:cd:c3:
0c:be:b3:ad:32:3e:f2:a9:77:11:41:51:61:76:98:
ae:3e:80:14:58:57:de:c2:a5:31:e3:88:99:47:36:
de:ae:c0:e7:28:45:c0:f1:58:a6:e8:60:5a:93:f3:
3f:cf:69:27:30:52:48:19:dc:1c:60:c2:38:b3:6b:
94:bf:ab:89:d4:e3:78:ea:c5:09:1b:34:56:57:25:
43:a1:36:bb:25:93:c9:75:e0:41:20:71:64:c3:1a:
bc:75:39:79:c7:20:a2:59:1e:3b:ff:2c:c4:92:68:
2c:c9:38:3f:9e:1d:f5:20:9f:b8:8f:5a:59:ee:42:
84:9d:3b:f9:d5:8b:96:ee:28:e1:29:97:74:78:c9:
0b:bf:6d:bd:10:20:7c:d4:98:ef:b4:8b:d2:a5:77:
93:a1:06:50:29:dd:68:2c:ac:28:65:f3:51:0a:3a:
ff:0e:e0:13:0f:41:99:e2:29:6d:24:ea:16:91:82:
9d:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DC:A5:62:29:14:C1:69:B1:73:4D:7B:AC:42:B6:0D:DF:3F:F6:B0:EC
X509v3 Authority Key Identifier:
keyid:2C:AC:84:CE:EC:57:B3:5F:A3:95:34:AE:23:00:9A:EA:82:02:39:AA
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/LKyEzuxXs1-jlTSuIwCa6oICOao.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/04/687cd5-6345-4f64-be46-ede70c8ed513/1/LKyEzuxXs1-jlTSuIwCa6oICOao.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/04/687cd5-6345-4f64-be46-ede70c8ed513/1/LKyEzuxXs1-jlTSuIwCa6oICOao.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1e:98:61:e2:fe:38:1f:d1:43:5a:a5:16:71:20:a3:89:f2:11:
03:d9:9e:69:4b:05:b2:a4:e5:72:dc:1e:94:2e:cc:f4:03:b6:
7c:89:e4:fb:ff:87:6f:b1:b9:ad:3e:6a:20:4d:a0:17:c2:bd:
c1:50:1f:7c:aa:fd:fa:4f:0b:3b:76:fa:e4:a9:5e:07:d4:7c:
c5:04:7f:b4:17:a7:7c:83:8a:e1:93:aa:7b:a7:40:16:bc:be:
54:89:9a:ae:2c:57:a8:67:8a:f9:ac:9e:72:db:a3:f7:56:54:
6f:b2:1b:a0:3a:f4:2b:2a:e0:1c:e6:2e:8b:de:83:f2:bd:af:
59:a1:60:4b:69:27:65:26:22:9a:67:c1:22:ec:24:01:43:44:
09:1a:98:15:5c:83:8e:23:b8:fd:70:13:e0:71:ee:9d:03:34:
2f:f3:4a:d5:20:bd:68:ee:0e:93:4c:74:9b:7a:db:82:bf:b6:
9b:58:25:b8:71:19:e3:b6:d5:6c:a5:49:db:7a:cc:d9:0e:e2:
7a:cb:fa:05:d9:87:94:76:3a:33:d6:51:30:bb:91:26:64:08:
e4:67:99:cb:d5:0e:8f:29:7f:6c:d4:09:ef:57:08:0d:b5:de:
62:60:8e:7b:bf:71:9f:92:03:5f:9f:31:28:8c:ae:a1:cd:6e:
73:5a:53:99
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 08:08:27 2026 by rpki-client